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IN THE CLAIMS 



1. (Currently Amended) A method of securely providing content data to a user's system over a 
web broadcast infrastructure with a plurality of channels, the method comprising the steps of: 

encrypting content data using a first encrypting key to form encrypted content data, 
wherein the first encrypting key is a symmetric if with a corresponding first decrypting key, 

encrypting the first decrypting key, using a second encrypting key of a trusted third party ; 

broadcasting promotional metadata related to at least part of the encrypted content data on 
a first web broadcast channel for reception by at least one user's system; 
sending a t l e ast pait uf the uiuyptcd content data uvci a second channel; 

transferring the encrypted first decrypting key, which has been encrypted with the second 
encrypting key, to the user's system via a computer readable medium; 

^■ferrin p the encrypted first decryp ting k ey, which has be en encrypted with the second 

encrypting kev to the trusted thi rd partv: 

r ? r.Pivin p the encrypt^ first decryp ting kev. which has been decrypted by the trusted third 
party and re-flncrvpted w ith a user's system kev: and 

decrypting, on the user's system in a tamper resistant environment, the encrypted first 
decrypting key with a second dcuyptiiig kc> ami iujiu jplul with uustul thiid parly key the 
user's system kev : 

wheieiii the tampci icsutant uiviiumuuil fuims iccuujptcd cuutcut data by dcci yptiiig the 

uiu vplul cuiilcul data with flic Gul decupling Key and iccuciypthig the cuiUciil data with a 
locally generated digital content playci cuayptiug kc,y ao Lu be compatible with a content player 
applicaliun uu the usu ? J» fcyricm whicluuid c u, icuici>pted content data dclivcicd Hum one of a 
teleconimuiiicauuiu inflasUuctmc and a cuniputu. readabl e , stuxage m e dium . 

2. (Original) The method as defined in claim 1, wherein the step of broadcasting the promotional 
metadata includes broadcasting the promotional metadata periodically over a predetermined time 
interval. 
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3. (Previously Presented) The method as defined in claim 1, wherein the step of broadcasting the 
promotional metadata includes the sub-step of: 

converting at least the promotional metadata into a format readable by a web browser. 

4. (Previously Presented) The method as defined in claim 1, wherein the step of sending at least 
part of the encrypted content data includes broadcasting a schedule of a broadcast time and web 
broadcast channel for at least part of the encrypted content data. 

5. (Previously Presented) The method as defined in claim 1, wherein the step of sending at least 
part of the encrypted content data over a second channel includes broadcasting the encrypted 
content data in a format compatible with DirecPC™. 

6. (Previously Presented) The method as defined in claim 1 , wherein the promotional metadata 
contains a schedule of broadcast times for the encrypted content data. 

7. (Currently Amended) A method of securely receiving content data on a user's system from a 
web broadcast infrastructure with a plurality of channels, the method comprising the steps of: 

receiving promotional metadata from a first web broadcast channel, the promotional 
metadata related to encrypted content data; 

assembling at least part of the promotional metadata into a promotional offering for 
review by a user; 

selecting by a user, encrypted content data to be received related to the promotional 
offering metadata; 

retrieving the encrypted content data from a user's system via a second-channel, the 
encrypted content data selected from the promotional metadata, and wherein the encrypted 
content data has been previously encrypted using a first encrypting key, wherein the first 
encrypting key is a symmetric ke y with a corresponding first decrypting key , wherein the second 
channel is selected from the group consisting of a telecommunications network, a broadcast 
transmission, and a computer removable storage medium; 
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receiving the first decrypting key via a computer readable medium, the first decrypting 
key for decrypting at least some of the encrypted content data received via the second web 
broadcast channe l, wherein the first decrypting key has been encryp ted with a second encrypting 
key of a trusted third party : 

transferring the encrypted first decrypting key, whic h has been encrypted with the second 
encrypting key to the trusted third party: 

receiving the encrypted first decrypting key, which has been decrypted by the trusted third 
party and re-encrvpted with a u ser's system kev: and 

decrypting, on the user's system in a tamper resistant environment, the encrypted first 
decrypting key with " ^^ ■■■■■ 1 Hfti'. i ypting V r tythe user's system kev : 

wlici e iu the tamper resistant environment fonm> nxnci ' jptcd content data by decrypting the 

euu - j/ptcd cuutcnt data wilh the first decrypting k e y and recuu jpling the conten t d ata with a 
luidlly gui c iated digi t al luutunt playci encrypting k e y so to be compatible with a content player 
application mi Hie us e r's sys t em which rcudcis reenuyplcd cont e nt da t a d elivuol ftum one of a 
telecommunications iiifiasUuctuxe and a computer r eadable storage medium . 

8. (Original) The method as defined in claim 7, wherein the step of assembling at least part of the 
promotional data includes assembling at least part of the promotional data into a format readable 
by a web browser and wherein the step of selecting includes selecting with a web browser. 

9. (Previously Presented) The method as defined in claim 7, wherein the step of selecting 
includes selecting promotional material that has been previously received and stored on the 
user's system. 

10. (Previously Presented) The method as defined in claim 9, wherein the step of selecting 
further comprises the sub-steps of: 

determining a schedule for next web broadcast of the encrypted content data selected; 
setting a trigger to trigger the user's system to receive the next web broadcast on the 
second channel. 
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11. (Previously Presented) The method as defined in claim 10, wherein the step of retrieving 
encrypted content data from a second channel, includes receiving the encrypted content data 
selected from the promotional metadata on a web broadcast channel and a time provided by the 
trigger. 

12. (Previously Presented) The method as defined in claim 7, wherein the step of retrieving 
encrypted content data from a second channel includes receiving data in a format compatible 
with DirecPC™. 

13. (Previously Presented) The method as defined claim 7, wherein the step of receiving data 
from a second channel includes the sub-step of: 

authorizing over a back channel that the user's system is authorized to receive the data 
selected; and wherein the step of receiving the first decrypting key includes receiving the first 
decrypting key only if the user's system is authorized to receive the encrypted content data 
selected. 

14. (Previously Presented) The method as defined claim 7, wherein the step of receiving 
encrypted content data from a second channel further includes the sub-step of; 

notifying the user the next time the user starts the user's system a status if the current data 
selected from the promotional metadata has been received on the user's system. 

15. (Currently Amended) The method as defined in claim 7, wherein the step of receiving the 
fy ■ J1 ,i in f j V i- y ftTirrv pted content data , includes receiving the encrypted content data first 
deuypting key Lhal h*u> been uiuypled with a &ciuinl muypliiife key along \yith a network 
address of the trusted third party . 

16. (Original) The method as defined in claim 15, wherein the step of receiving the first 
decrypting key includes receiving the first decrypting key over a broadcast stream. 
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17. (Currently Amended) The method defined in claim 1 5, wherein the s e cond dceiyp t ing key is 
.w it »r> t he iuwr y s syst e m from network address of the trusted third party is a n address of a 
clearinghouse. 

18. (Currently Amended) The method defined in claim 15, wherein the first sccond decrypting 
key has a timeout provision for decrypting dat a that has been cnciypted with the second 
encryption key is sent to tine user y s system from a clearinghouse . 

19. (Currently Amended) A system for securely providing content data to a user's system over a 
web broadcast infrastructure with a plurality of channels, the system comprising: 

a content system; 
a first public key; 

a first private key, which corresponds to the first public key; 
a data encrypting key; 

a data decrypting key for decrypting data encrypted using the data encrypting key, 
wherein the first encrypting key is a symmetric key with a corresponding first decrypting kev; 

first data encryption means for encrypting data to form encrypted content data so as to be 
decryptable only by the data decrypting key, 

second data encryption means, using the first public key, for encrypting the data 
decrypting key; 

a clearing house; 

a broadcast center, for broadcasting to one, or more user's systems on a first web 
broadcast channel, promotional metadata related to data being broadcasted on a second web 
broadcast channel, and sending on the second channel encrypted content data, wherein the second 
channel is selected from the group consisting of a telecommunications network, a broadcast 
transmission, and a computer removable storage medium; 

at least one user system with a first receive r means for receiving the data decrypting key 
which has been encrypted ; 

first transferring means for transferring the data decrypting key which has been encrypted, 
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to the clearing house, wherein the clearinghouse possesses the first private key; 

first decrypting means for decrypting the data decrypting key using the first private key; 
a second public ke y of the user's system : 

a second private key; which corresponds to the second public key; 

re-encryption means for re-encrypting the data decrypting key using the second public 

key, 

second transferring means for transferring the re-encrypted data decrypting key to the 
user's system, wherein the user's system possesses the second private key; 

second decrypting means for decrypting the re-encrypted data decrypting key using the 

second private key; and 

decrypting, on the user's system in a tamper resistant environment, the encrypted data 
decrypting keywith the first private key; 

wheiein the lanipu ii&islant environm e nt forms, icencryytul content da t a by de crypting the 

eiiu jplcd cuuluxt da t a with lln data denoting k i > and nxn u j/p l iug the ujiiluil data with a 
lucallj gonnalid digital buuluit playu um,ypling Key su lu be lumpalibli with a luuluit player 
application uu tin usu's syslun which lenders itumypt i d miilcnl data dilivuui fr om one of a 
t e lecommunications infrastruc t ur e and a computet 1 readabl e stora ge medium. 

20. (Original) The system as defined in claim 19, wherein the promotional metadata contains a 
schedule of broadcast times for the data. 

21. (Currently Amended) A user's system for securely receiving data from a web broadcast 
infrastructure with a plurality of channels, comprising: 

a receiver for receiving promotional metadata from a first web broadcast channel, the 
promotional metadata related to data available for reception; 

an interface to an output device for presenting at least part of the promotional metadata 

for review by a user; 

an interface to an input device for receiving a selection by a user of the data to be 
received related to the promotional metadata; 
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a controller for controlling the receiver to receive data from a second web broadcast 
channel, the data selected from the promotional metadata, and wherein the data has been 
previously encrypted using a first encrypting key, wherein the first encrypting key is a symmetric 
ke v with a corresponding first decrypting key , wherein the second channel is selected from the 
group consisting of a telecommunications network, a broadcast transmission, and a computer 
removable storage medium; and 

an interface for receiving the first decrypting key via a computer readable medium, the 
first decrypting key for decrypting at least some of the data received via the second web 
broadcast channel , wherein the first decrypting kev has been encrypted with a sec ond encrypting 
kev of a trusted third partv : 

transferring the encrypted first decrypting kev. which has been encrypted with t he second 
encrypting kev to the trusted third partv: 

receiving the encrypted first decrypting kev. which has been decrypted bv th e trusted third 
party and re-encrvpted with a user's system kev : and 

decrypting, on the user's system in a tamper resistant environment, the encrypted first 
decrypting key with »■ s tra n d d e crypt i n g keyithe user's system kev :: 

wherein the tamper resistant environment forms reencrypted content data by reencrypting the 
content data with a locally generated digital content player encrypting key: 

wh e rein th e pr e vi o usly encrypted content data has been decryp t ed with th e fii&t decrypting 

k e y, and th e tamper icsistan t environmen t s t oring the ic e ncrypted con t ent da t a on s t orage device 
c o upled t o the use r 's &>atem is cuinpatiblc with a play e r application used to render the 
re e iicrypt c d c o n t ent data delrv e i e d horn one of a t e lecommunications infras t ruc t ure and a 
computer j eadable stoiage medium . 

22. (Original) The user's system as defined in claim 21, wherein the output device is a web 
browser and the input device is coupled to the web browser for receiving a selection by a user. 

23. (Original) The user's system as defined in claim 21, wherein the controller further comprises: 

a schedule derived from the promotional metadata wherein the schedule is used to control 
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the receiver to receive data from a second web broadcast channel. 

24. (Original) The user's system as defined in claim 21, wherein the receiver is adapted to 
receive data broadcasted in a format compatible with DirecPC™. 

25. (Currently Amended) A computer program product for securely providing content data to a 
user's system over a web broadcast infrastructure with a plurality of channels, the computer 
program product comprising: 

a storage medium readable by a processing circuit and storing instructions for execution by 
the processing circuit for performing a method comprising: 

encrypting content data using a first encrypting key to form encrypted content 
data, wherein the first encrypting key is a symmetric key T with a corresponding first 
decrypting frey; 

encrypting the first decrypting key, using a second encrypting key; 

broadcasting promotional metadata related to at least part of the encrypted content 
data on a first web broadcast channel for reception by at least one user's system; 

sending at least part of the encrypted content data over a second channel; 

transferring the encrypted first decrypting key, which has been encrypted with the 
second encrypting key of a trusted third party , to the user's system via a computer 
readable medium; 

transferring the encrypted first decrypting key, which has been encrypted with the 
second encrypting key to the trusted third party. 

receiving the encrypted first decrypting kev. which has been dec rypted bv the 
trusted third party and re-encrvpted with a user's system key : and 

decrypting, on the user's system in a tamper resistant environment, the encrypted 
first decrypting key with a sec o nd dmypting key user's system key : 

wh e rein th e tamper resistant environment forms r ee nayp t cd content data by 

decryp t ing the encrypted cont e nt data with t he fust d c uypting k e y and reencrypting the 
cont e nt data widi a locally generated digi t al con t en t player encry p ting kty s o t o b e 
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c o mpatibl e- with a c o nten t player applica t i o n o n the uscr 7 s system which venders 
r ccnciy p tcd e o n t cnt data delive r ed fr o m o ne o f a telec o mmunica t i o ns infrastruc t ure and a 
computer readable st o rage medium . 
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